Get started with conditional access in Azure Active Directory

In this article

Conditional access is a capability of Azure Active Directory that enables you to define conditions under which authorized users can access your apps.

This topic provides you with instructions for testing a conditional access based on a location condition in your environment.

Scenario description

One common requirement in many organizations is to only require multi-factor authentication for access to apps that is not performed from the corporate intranet. With Azure Active Directory, you can easily accomplish this goal by configuring a location-based conditional access policy. This topic provides you with detailed instructions for configuring a related policy. The policy leverages Trusted IPs to distinguish between access attempts made from the corporate's intranet and all other locations.